**Secret Clearance** Information System Security Officer (ISSO) (L3)

We are seeking a highly skilled Information Systems Security Officer (ISSO) to support classified information systems at a secure client site in Rancho Cordova, California. This role is ideal for a security professional who thrives in regulated, mission?critical environments and is passionate about safeguarding classified systems across their full lifecycle.

As the ISSO, you will be responsible for ensuring information systems maintain an approved security posture and comply with all applicable Cognizant Security Agency (CSA) requirements. You will play a hands?on role in system monitoring, security compliance, change management, and continuous monitoring while partnering closely with the Information Systems Security Manager (ISSM) and Facility Security Officer (FSO)., * Ensure classified information systems are operated, maintained, and disposed of in accordance with approved security authorization packages, policies, and procedures

• Monitor system operations and environments to maintain continuous compliance
• Manage and control system changes and assess security impacts
• Collect, review, and analyze audit records across multiple system platforms
• Report security discrepancies, risks, and incidents to the ISSM and/or FSO
• Verify all system users have appropriate clearance, authorization, need?to?know, and security awareness prior to system access
• Conduct continuous monitoring activities aligned with security authorization requirements
• Support vulnerability management, remediation, and mitigation efforts using approved scanning tools
• Attend technical and cybersecurity training related to compliance duties (OS, networking, security operations)

• Active U.S. Secret Security Clearance (U.S. Citizenship only; no dual citizenship)
• Ability to obtain and maintain DoD 8570 baseline certification
• Experience maintaining and updating security documentation, including:

• System Security Plans (SSPs)
• Plans of Action & Milestones (POA&M)
• Security policies and procedures

• Working knowledge of DISA STIGs, system hardening, and security compliance
• Experience monitoring vulnerability assessment data using tools such as Tenable/ACAS
• Strong understanding of reporting, incident response, and continuous monitoring requirements, * Experience with government and defense security compliance frameworks, including:

• NISPOM, DAAPM, RMF
• NIST SP 800?53, NIST SP 800?171
• DISA STIGs, with emphasis on Risk Management Framework (RMF)

• Familiarity with Splunk or similar SIEM platforms for log analysis and security monitoring
• Experience using Tenable.sc / Nessus Manager for vulnerability assessments
• Knowledge of Security Content Automation Protocol (SCAP), * Bachelor's degree with 2 years of relevant experience
• Associate degree (AA) with 6 years of relevant experience
• In lieu of a degree: Minimum of 2 years of directly related experience